{"id":49801,"date":"2022-03-22T09:00:31","date_gmt":"2022-03-22T00:00:31","guid":{"rendered":"https:\/\/www.creationline.com\/?p=49801"},"modified":"2022-03-16T20:33:16","modified_gmt":"2022-03-16T11:33:16","slug":"linux%e3%82%ab%e3%83%bc%e3%83%8d%e3%83%ab%e3%81%ae%e6%96%b0%e3%81%9f%e3%81%aa%e8%84%86%e5%bc%b1%e6%80%a7%ef%bc%9acgroups-%e3%82%92%e6%82%aa%e7%94%a8%e3%81%97%e3%81%9f%e3%82%b3%e3%83%b3%e3%83%86","status":"publish","type":"post","link":"https:\/\/www.creationline.com\/tech-blog\/cloudnative\/aquasecurity\/49801","title":{"rendered":"Linux\u30ab\u30fc\u30cd\u30eb\u306e\u65b0\u305f\u306a\u8106\u5f31\u6027\uff1aCgroups \u3092\u60aa\u7528\u3057\u305f\u30b3\u30f3\u30c6\u30ca\u30a8\u30b9\u30b1\u30fc\u30d7 #aqua #\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3 #\u30b3\u30f3\u30c6\u30ca #linux #cve20220492"},"content":{"rendered":"<p>\u672c\u30d6\u30ed\u30b0\u306f\u300cAqua Security\u300d\u793e\u306e\u6280\u8853\u30d6\u30ed\u30b0\u30672022\u5e743\u67089\u65e5\u306b\u516c\u958b\u3055\u308c\u305f\u300c<a href=\"https:\/\/blog.aquasec.com\/new-linux-kernel-vulnerability-escaping-containers-by-abusing-cgroups\" rel=\"nofollow noopener noreferrer\" target=\"_blank\"> New Linux Kernel Vulnerability: Escaping Containers by Abusing Cgroups <\/a>\u300d\u306e\u65e5\u672c\u8a9e\u7ffb\u8a33\u3067\u3059\u3002<\/p>\n<p><center><img loading=\"lazy\" decoding=\"async\" src=\"\/tech-blog\/cms_x3GWkuX\/wp-content\/uploads\/2022\/03\/b60e1c8b93869131dccaf77f52ba9ea7.png\" alt=\"\" width=\"867\" height=\"418\" class=\"alignnone size-full wp-image-49802\" srcset=\"https:\/\/www.creationline.com\/tech-blog\/cms_x3GWkuX\/wp-content\/uploads\/2022\/03\/b60e1c8b93869131dccaf77f52ba9ea7.png 867w, https:\/\/www.creationline.com\/tech-blog\/cms_x3GWkuX\/wp-content\/uploads\/2022\/03\/b60e1c8b93869131dccaf77f52ba9ea7-360x174.png 360w, https:\/\/www.creationline.com\/tech-blog\/cms_x3GWkuX\/wp-content\/uploads\/2022\/03\/b60e1c8b93869131dccaf77f52ba9ea7-768x370.png 768w\" sizes=\"auto, (max-width: 867px) 100vw, 867px\" \/><\/center><\/p>\n<h2>Linux\u30ab\u30fc\u30cd\u30eb\u306e\u65b0\u305f\u306a\u8106\u5f31\u6027\uff1aCgroups \u3092\u60aa\u7528\u3057\u305f\u30b3\u30f3\u30c6\u30ca\u30a8\u30b9\u30b1\u30fc\u30d7<\/h2>\n<hr \/>\n<p>\u6700\u8fd1\u516c\u958b\u3055\u308c\u305f Linux \u306e\u8106\u5f31\u6027 CVE-2022-0492 \u306f\u3001cgroups \u306b\u304a\u3051\u308b release_agent \u306e\u53d6\u308a\u6271\u3044\u306e\u6b20\u70b9\u306b\u95a2\u9023\u3057\u3066\u304a\u308a\u3001\u72b6\u6cc1\u306b\u3088\u3063\u3066\u306f\u30b3\u30f3\u30c6\u30ca\u306e\u30a8\u30b9\u30b1\u30fc\u30d7\u3092\u8a31\u3057\u3066\u3057\u307e\u3046\u53ef\u80fd\u6027\u304c\u3042\u308b\u3068\u306e\u3053\u3068\u3067\u3059\u3002\u5e78\u3044\u306a\u3053\u3068\u306b\u3001\u4e00\u822c\u7684\u306a\u30b3\u30f3\u30c6\u30ca\u69cb\u6210\u3067\u306f\u3001\u69d8\u3005\u306a\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u5f37\u5316\u306e\u5c64\u304c\u3001\u3053\u306e\u8106\u5f31\u6027\u306e\u5b9f\u884c\u3092\u30d6\u30ed\u30c3\u30af\u3057\u307e\u3059\u3002<\/p>\n<p>\u3057\u304b\u3057\u3001\u3059\u3079\u3066\u306e CVE \u3068\u540c\u69d8\u306b\u3001\u30d1\u30c3\u30c1\u3092\u8fc5\u901f\u306b\u9069\u7528\u3059\u308b\u3053\u3068\u304c\u91cd\u8981\u3067\u3059\u3002\u307e\u305f\u3001\u4e00\u822c\u7684\u306b Linux \u30ab\u30fc\u30cd\u30eb\u306e\u8106\u5f31\u6027\u304c\u305d\u3046\u3067\u3042\u308b\u3088\u3046\u306b\u3001\u5f71\u97ff\u3092\u53d7\u3051\u308b\u3059\u3079\u3066\u306e\u30b7\u30b9\u30c6\u30e0\u3092\u518d\u8d77\u52d5\u3057\u3066\u3001\u30d1\u30c3\u30c1\u304c\u9069\u7528\u3055\u308c\u305f\u30d0\u30fc\u30b8\u30e7\u30f3\u3092\u4f7f\u7528\u3059\u308b\u3053\u3068\u3082\u91cd\u8981\u3067\u3059\u3002\u73fe\u6642\u70b9\u3067\u306f\u3001Linux \u30db\u30b9\u30c8\u306e\u30d1\u30c3\u30c1\u9069\u7528\u306b\u6ce8\u610f\u3092\u6255\u3046\u3053\u3068\u306f\u3001\u300c<a href=\"\/49754\" rel=\"noopener\" target=\"_blank\">Dirty Pipe<\/a>\u300d\u306e\u3088\u3046\u306a\u4ed6\u306e\u91cd\u5927\u306a\u8106\u5f31\u6027\u306b\u3082\u5bfe\u51e6\u3059\u308b\u5fc5\u8981\u304c\u3042\u308b\u305f\u3081\u3001\u7279\u306b\u91cd\u8981\u3067\u3059\u3002<\/p>\n<h3>\u591a\u5c64\u9632\u5fa1\u306e\u91cd\u8981\u6027<\/h3>\n<p>\u3053\u306e\u8106\u5f31\u6027\u306e\u8a73\u7d30\u306b\u3064\u3044\u3066\u306f\u3001<a href=\"https:\/\/unit42.paloaltonetworks.com\/cve-2022-0492-cgroups\/\" rel=\"noopener\" target=\"_blank\">New Linux Vulnerability CVE-2022-0492 Affecting Cgroups<\/a> \u3084 <a href=\"https:\/\/terenceli.github.io\/%E6%8A%80%E6%9C%AF\/2022\/03\/06\/cve-2022-0492\" rel=\"noopener\" target=\"_blank\">CVE-2022-0492: How Release_Agent Escape Became a Vulnerability<\/a> \u306a\u3069\u3001\u512a\u308c\u305f\u8a18\u4e8b\u304c\u3044\u304f\u3064\u304b\u3042\u308a\u307e\u3059\u3002 \u3053\u308c\u3089\u306e\u5831\u544a\u304b\u3089\u3001\u3053\u306e\u8106\u5f31\u6027\u306f\u30011\u6708\u306e <a href=\"\/lab\/aquasecurity\/48558\" rel=\"noopener\" target=\"_blank\">CVE-2022-0185<\/a> \u306a\u3069\u306e\u6700\u8fd1\u306e\u4f8b\u3068\u540c\u69d8\u306b\u3001\u30b3\u30f3\u30c6\u30ca\u5316\u3067\u591a\u5c64\u9632\u5fa1\u6280\u8853\u3092\u4f7f\u7528\u3059\u308b\u3053\u3068\u306e\u91cd\u8981\u6027\u3092\u793a\u3057\u3066\u3044\u308b\u3053\u3068\u304c\u5206\u304b\u308a\u307e\u3059\u3002<\/p>\n<p>Docker \u3084\u985e\u4f3c\u306e\u6280\u8853\u306f\u3001Linux \u306e\u3044\u304f\u3064\u304b\u306e\u7570\u306a\u308b\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u30e1\u30ab\u30cb\u30ba\u30e0\u3092\u4f7f\u7528\u3057\u3066\u30d7\u30ed\u30bb\u30b9\u306e\u5206\u96e2\u3092\u5b9f\u73fe\u3057\u3001\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u306b\u5bfe\u3057\u3066\u968e\u5c64\u7684\u306a\u30a2\u30d7\u30ed\u30fc\u30c1\u3092\u53d6\u3063\u3066\u3044\u307e\u3059\u3002\u540d\u524d\u7a7a\u9593\u3001capability\u3001seccomp\u3001AppArmo \u3001SELinux \u306f\u3059\u3079\u3066\u3001\u30b3\u30f3\u30c6\u30ca\u30a8\u30b9\u30b1\u30fc\u30d7\u306e\u30ea\u30b9\u30af\u8efd\u6e1b\u306b\u4e00\u5f79\u8cb7\u3063\u3066\u3044\u307e\u3059\u3002<\/p>\n<p>\u3053\u306e\u5834\u5408\u3001Docker \u306e\u30c7\u30d5\u30a9\u30eb\u30c8\u306e seccomp \u3068 AppArmor \u30dd\u30ea\u30b7\u30fc\u306e\u4e21\u65b9\u304c\u3001\u8106\u5f31\u6027\u306e\u60aa\u7528\u3092\u30d6\u30ed\u30c3\u30af\u3057\u307e\u3059\u3002\u4e21\u65b9\u304c\u7121\u52b9\u306b\u306a\u3063\u3066\u3044\u308b\u5834\u5408\u306e\u307f\u3001\u60aa\u7528\u304c\u53ef\u80fd\u306b\u306a\u308a\u307e\u3059\u3002<\/p>\n<p>Docker \u306f\u30c7\u30d5\u30a9\u30eb\u30c8\u3067 AppArmor \u3068 seccomp \u3092\u6709\u52b9\u306b\u3057\u307e\u3059\u304c\u3001Kubernetes \u306f\u30c7\u30d5\u30a9\u30eb\u30c8\u3067 seccomp \u30d7\u30ed\u30d5\u30a1\u30a4\u30eb\u3092\u7121\u52b9\u306b\u3057\u3066\u3044\u307e\u3059\u3002\u305d\u306e\u305f\u3081\u3001Kubernetes \u306e\u5834\u5408\u306f\u3001OPA Gatekeeper \u3084 Kyverno \u306a\u3069\u306e Mutating Admissioncontroller \u3092\u4f7f\u7528\u3057\u3066\u3001\u30ef\u30fc\u30af\u30ed\u30fc\u30c9\u3054\u3068\u306b\u3001\u307e\u305f\u306f\u30af\u30e9\u30b9\u30bf\u30fc\u30ec\u30d9\u30eb\u3067\u3053\u308c\u3092\u518d\u5ea6\u6709\u52b9\u306b\u3059\u308b\u5fc5\u8981\u304c\u3042\u308a\u307e\u3059\u3002\u307e\u305f\u3001\u73fe\u5728\u3053\u308c\u3092\u30c7\u30d5\u30a9\u30eb\u30c8\u3067\u6709\u52b9\u306b\u3059\u308b <a href=\"https:\/\/github.com\/kubernetes\/enhancements\/issues\/2413\" rel=\"noopener\" target=\"_blank\">Kubernetes \u306e\u6a5f\u80fd\u304c\u958b\u767a\u4e2d<\/a>\u3067\u3059\u3002<\/p>\n<h3>\u30e6\u30fc\u30b6\u540d\u524d\u7a7a\u9593\u306e\u30ea\u30b9\u30af<\/h3>\n<p>\u307e\u305f\u3001\u672c\u8106\u5f31\u6027\u3068 CVE-2022-0185 \u306e\u5171\u901a\u70b9\u3068\u3057\u3066\u3001\u30db\u30b9\u30c8\u4e0a\u3067\u30e6\u30fc\u30b6\u540d\u524d\u7a7a\u9593\u304c\u6709\u52b9\u306a\u5834\u5408\u3001\u60aa\u7528\u304c\u5bb9\u6613\u306b\u306a\u308b\u3053\u3068\u304c\u6319\u3052\u3089\u308c\u307e\u3059\u3002\u30e6\u30fc\u30b6\u540d\u524d\u7a7a\u9593\u306f\u3001\u30db\u30b9\u30c8\u3078\u306e\u30d5\u30eb\u30a2\u30af\u30bb\u30b9\u3092\u6301\u305f\u306a\u3044\u30d7\u30ed\u30bb\u30b9\u306b\u5bfe\u3057\u3066\u3001root \u3068\u3057\u3066\u52d5\u4f5c\u3057\u3066\u3044\u308b\u3068\u601d\u308f\u305b\u308b\u3053\u3068\u3067\u3001\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u3092\u5411\u4e0a\u3055\u305b\u308b\u3053\u3068\u3092\u610f\u56f3\u3057\u3066\u3044\u307e\u3059\u3002<\/p>\n<p>\u30ea\u30b9\u30af\u3082\u3042\u308a\u307e\u3059\u304c\u3001\u30e6\u30fc\u30b6\u540d\u524d\u7a7a\u9593\u306f\u3055\u307e\u3056\u307e\u306a\u5229\u70b9\u3092\u5099\u3048\u3066\u3044\u307e\u3059\u3002\u3057\u304b\u3057\u3001\u305d\u306e\u5b9f\u88c5\u306f\u8907\u96d1\u3067\u3042\u308a\u3001\u307e\u305f\u3001\u30e6\u30fc\u30b6\u540d\u524d\u7a7a\u9593\u3092\u4f7f\u7528\u3059\u308b\u3068\u3001\u8106\u5f31\u6027\u306e\u3042\u308b Linux \u30ab\u30fc\u30cd\u30eb\u306e\u30b3\u30fc\u30c9\u30d1\u30b9\u306b\u30a2\u30af\u30bb\u30b9\u3067\u304d\u308b\u53ef\u80fd\u6027\u304c\u3042\u308a\u307e\u3059\u3002<\/p>\n<h3>\u63a8\u5968\u4e8b\u9805<\/h3>\n<p>\u3053\u306e CVE \u306e\u5f71\u97ff\u3092\u8efd\u6e1b\u3059\u308b\u305f\u3081\u306b\u3001\u4f01\u696d\u304c\u3067\u304d\u308b\u5b9f\u7528\u7684\u306a\u30a2\u30af\u30b7\u30e7\u30f3\u306f\u3001\u3044\u304f\u3064\u304b\u3042\u308a\u307e\u3059\u3002<\/p>\n<ul>\n<li>\u6700\u3082\u91cd\u8981\u306a\u3053\u3068\u306f\u3001\u3059\u3079\u3066\u306e\u30db\u30b9\u30c8\u306b\u5b9a\u671f\u7684\u306b\u30d1\u30c3\u30c1\u3092\u9069\u7528\u3057\u3001\u65b0\u3057\u3044\u30ab\u30fc\u30cd\u30eb\u30d0\u30fc\u30b8\u30e7\u30f3\u304c\u4f7f\u7528\u3055\u308c\u3066\u3044\u308b\u3053\u3068\u3092\u78ba\u8a8d\u3059\u308b\u305f\u3081\u306b\u518d\u8d77\u52d5\u3055\u305b\u308b\u3053\u3068\u3067\u3059\u3002\n<li>\u3059\u3079\u3066\u306e\u30ef\u30fc\u30af\u30ed\u30fc\u30c9\u3067\u3001\u3059\u3079\u3066\u306e<a href=\"https:\/\/www.aquasec.com\/products\/container-security\/?_ga=2.66250152.78830428.1646619911-599449579.1630040717\" rel=\"noopener\" target=\"_blank\">\u30b3\u30f3\u30c6\u30ca\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3<\/a>\u30ec\u30a4\u30e4\u30fc\u304c\u4f7f\u7528\u3055\u308c\u3066\u3044\u308b\u3053\u3068\u3092\u78ba\u8a8d\u3059\u308b\u3053\u3068\u3067\u3059\u3002\u7279\u306b Kubernetes \u306e\u5834\u5408\u3001\u3059\u3079\u3066\u306e\u30ef\u30fc\u30af\u30ed\u30fc\u30c9\u306b seccomp \u304c\u8a2d\u5b9a\u3055\u308c\u3066\u3044\u308b\u3053\u3068\u3092\u78ba\u8a8d\u3057\u307e\u3057\u3087\u3046\u3002\n<li>\u7d76\u5bfe\u306b\u5fc5\u8981\u306a\u5834\u5408\u3092\u9664\u304d\u3001\u30b3\u30f3\u30c6\u30ca\u3092 root \u30e6\u30fc\u30b6\u3067\u5b9f\u884c\u3057\u306a\u3044\u3067\u304f\u3060\u3055\u3044\u3002\n<li>\u30db\u30b9\u30c8\u306e\u904b\u7528\u306b\u30e6\u30fc\u30b6\u540d\u524d\u7a7a\u9593\u3092\u4f7f\u7528\u3057\u306a\u3044\u5834\u5408\u306f\u3001\u3053\u306e\u6a5f\u80fd\u304c\u30db\u30b9\u30c8\u30ec\u30d9\u30eb\u3067\u7121\u52b9\u306b\u306a\u3063\u3066\u3044\u308b\u3053\u3068\u3092\u78ba\u8a8d\u3057\u307e\u3059\u3002\n<\/ul>\n<h2>\u307e\u3068\u3081<\/h2>\n<hr \/>\n<p>Linux \u30ab\u30fc\u30cd\u30eb\u3092\u4f7f\u7528\u3057\u3066\u5206\u96e2\u3059\u308b Docker \u30b9\u30bf\u30a4\u30eb\u306e\u30b3\u30f3\u30c6\u30ca\u3092\u4f7f\u7528\u3059\u308b\u969b\u306e\u8ab2\u984c\u306e1\u3064\u306f\u3001\u3053\u308c\u304c\u3082\u305f\u3089\u3059\u653b\u6483\u5bfe\u8c61\u9818\u57df\u306e\u5927\u304d\u3055\u3067\u3057\u305f\u3002CVE-2022-0492 \u306f\u3001\u5b9f\u884c\u74b0\u5883\u3092\u5805\u7262\u5316\u3057\u3001\u5229\u7528\u53ef\u80fd\u306a\u3059\u3079\u3066\u306e\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u5c64\u3092\u6d3b\u7528\u3059\u308b\u3053\u3068\u304c\u3044\u304b\u306b\u91cd\u8981\u3067\u3042\u308b\u304b\u3092\u793a\u3059\u3082\u30461\u3064\u306e\u4f8b\u3067\u3059\u3002\u3053\u308c\u306b\u3088\u308a\u3001\u30b3\u30f3\u30c6\u30ca\u306b\u30a2\u30af\u30bb\u30b9\u3059\u308b\u653b\u6483\u8005\u304c\u3001\u57fa\u76e4\u3068\u306a\u308b\u30db\u30b9\u30c8\u306b\u4fb5\u5165\u3059\u308b\u30ea\u30b9\u30af\u3092\u4f4e\u6e1b\u3067\u304d\u307e\u3059\u3002<\/p>\n<p><center>\n\t\t<!--HubSpot Call-to-Action Code -->\n\t\t<span class=\"hs-cta-wrapper\" id=\"hs-cta-wrapper-fecc193b-bbc5-40d2-9588-ed7b022af3aa\">\n\t\t<span class=\"hs-cta-node hs-cta-fecc193b-bbc5-40d2-9588-ed7b022af3aa\" id=\"fecc193b-bbc5-40d2-9588-ed7b022af3aa\">\n\t\t<!--[if lte IE 8]>\n\t\t<div id=\"hs-cta-ie-element\"><\/div>\n\t\t<![endif]-->\n\t\t<a href=\"https:\/\/cta-redirect.hubspot.com\/cta\/redirect\/6168413\/fecc193b-bbc5-40d2-9588-ed7b022af3aa\" >\n\t\t<img decoding=\"async\" class=\"hs-cta-img\" id=\"hs-cta-img-fecc193b-bbc5-40d2-9588-ed7b022af3aa\" style=\"border-width:0px;\" src=\"https:\/\/no-cache.hubspot.com\/cta\/default\/6168413\/fecc193b-bbc5-40d2-9588-ed7b022af3aa.png\"  alt=\"New call-to-action\"\/>\n\t\t<\/a>\n\t\t<\/span>\n\t\t<script charset=\"utf-8\" src=\"\/\/js.hubspot.com\/cta\/current.js\"><\/script>\n\t\t<script>\n\t\thbspt.cta.load(6168413, 'fecc193b-bbc5-40d2-9588-ed7b022af3aa', {});\n\t\t<\/script>\n\t\t<\/span>\n\t\t<!-- end HubSpot Call-to-Action Code -->\n\t\t<\/center><\/p>\n","protected":false},"excerpt":{"rendered":"<p>\u672c\u30d6\u30ed\u30b0\u306f\u300cAqua Security\u300d\u793e\u306e\u6280\u8853\u30d6\u30ed\u30b0\u30672022\u5e743\u67089\u65e5\u306b\u516c\u958b\u3055\u308c\u305f\u300c New Linux Kernel Vulnerability: Escaping Containers by Abusing Cg [&#8230;]<\/p>\n","protected":false},"author":56,"featured_media":49802,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"content-type":"","footnotes":""},"categories":[176],"tags":[174,152,627,602,286,358],"class_list":["post-49801","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-aquasecurity","tag-aqua","tag-aquasecurity","tag-cve20220492","tag-linux","tag-286","tag-358"],"acf":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.4 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>Linux\u30ab\u30fc\u30cd\u30eb\u306e\u65b0\u305f\u306a\u8106\u5f31\u6027\uff1aCgroups \u3092\u60aa\u7528\u3057\u305f\u30b3\u30f3\u30c6\u30ca\u30a8\u30b9\u30b1\u30fc\u30d7 #aqua #\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3 #\u30b3\u30f3\u30c6\u30ca #linux #cve20220492 - Tech Blog\uff5c\u30af\u30ea\u30a8\u30fc\u30b7\u30e7\u30f3\u30e9\u30a4\u30f3<\/title>\n<meta name=\"description\" content=\"AquaSecurity |\u672c\u30d6\u30ed\u30b0\u306f\u300cAqua Security\u300d\u793e\u306e\u6280\u8853\u30d6\u30ed\u30b0\u30672022\u5e743\u67089\u65e5\u306b\u516c\u958b\u3055\u308c\u305f\u300c New Linux Kernel Vulnerability:\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.creationline.com\/tech-blog\/cloudnative\/aquasecurity\/49801\" \/>\n<meta property=\"og:locale\" content=\"ja_JP\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Linux\u30ab\u30fc\u30cd\u30eb\u306e\u65b0\u305f\u306a\u8106\u5f31\u6027\uff1aCgroups \u3092\u60aa\u7528\u3057\u305f\u30b3\u30f3\u30c6\u30ca\u30a8\u30b9\u30b1\u30fc\u30d7 #aqua #\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3 #\u30b3\u30f3\u30c6\u30ca #linux #cve20220492 - Tech Blog\uff5c\u30af\u30ea\u30a8\u30fc\u30b7\u30e7\u30f3\u30e9\u30a4\u30f3\" \/>\n<meta property=\"og:description\" content=\"AquaSecurity |\u672c\u30d6\u30ed\u30b0\u306f\u300cAqua Security\u300d\u793e\u306e\u6280\u8853\u30d6\u30ed\u30b0\u30672022\u5e743\u67089\u65e5\u306b\u516c\u958b\u3055\u308c\u305f\u300c New Linux Kernel Vulnerability:\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.creationline.com\/tech-blog\/cloudnative\/aquasecurity\/49801\" \/>\n<meta property=\"og:site_name\" content=\"Tech Blog\uff5c\u30af\u30ea\u30a8\u30fc\u30b7\u30e7\u30f3\u30e9\u30a4\u30f3\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/creationline\" \/>\n<meta property=\"article:published_time\" content=\"2022-03-22T00:00:31+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.creationline.com\/tech-blog\/cms_x3GWkuX\/wp-content\/uploads\/2022\/03\/b60e1c8b93869131dccaf77f52ba9ea7.png\" \/>\n\t<meta property=\"og:image:width\" content=\"867\" \/>\n\t<meta property=\"og:image:height\" content=\"418\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/png\" \/>\n<meta name=\"author\" content=\"Kent Magruder\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@creationline\" \/>\n<meta name=\"twitter:site\" content=\"@creationline\" \/>\n<meta name=\"twitter:label1\" content=\"\u57f7\u7b46\u8005\" \/>\n\t<meta name=\"twitter:data1\" content=\"Kent Magruder\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/www.creationline.com\\\/tech-blog\\\/cloudnative\\\/aquasecurity\\\/49801#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.creationline.com\\\/tech-blog\\\/cloudnative\\\/aquasecurity\\\/49801\"},\"author\":{\"name\":\"Kent Magruder\",\"@id\":\"https:\\\/\\\/www.creationline.com\\\/tech-blog\\\/#\\\/schema\\\/person\\\/2dfcdde19e3b7cb7da7c9ae23e1b7717\"},\"headline\":\"Linux\u30ab\u30fc\u30cd\u30eb\u306e\u65b0\u305f\u306a\u8106\u5f31\u6027\uff1aCgroups \u3092\u60aa\u7528\u3057\u305f\u30b3\u30f3\u30c6\u30ca\u30a8\u30b9\u30b1\u30fc\u30d7 #aqua #\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3 #\u30b3\u30f3\u30c6\u30ca #linux #cve20220492\",\"datePublished\":\"2022-03-22T00:00:31+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/www.creationline.com\\\/tech-blog\\\/cloudnative\\\/aquasecurity\\\/49801\"},\"wordCount\":94,\"image\":{\"@id\":\"https:\\\/\\\/www.creationline.com\\\/tech-blog\\\/cloudnative\\\/aquasecurity\\\/49801#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.creationline.com\\\/tech-blog\\\/cms_x3GWkuX\\\/wp-content\\\/uploads\\\/2022\\\/03\\\/b60e1c8b93869131dccaf77f52ba9ea7.png\",\"keywords\":[\"aqua\",\"AquaSecurity\",\"cve20220492\",\"linux\",\"\u30b3\u30f3\u30c6\u30ca\",\"\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\"],\"articleSection\":[\"AquaSecurity\"],\"inLanguage\":\"ja\"},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/www.creationline.com\\\/tech-blog\\\/cloudnative\\\/aquasecurity\\\/49801\",\"url\":\"https:\\\/\\\/www.creationline.com\\\/tech-blog\\\/cloudnative\\\/aquasecurity\\\/49801\",\"name\":\"Linux\u30ab\u30fc\u30cd\u30eb\u306e\u65b0\u305f\u306a\u8106\u5f31\u6027\uff1aCgroups \u3092\u60aa\u7528\u3057\u305f\u30b3\u30f3\u30c6\u30ca\u30a8\u30b9\u30b1\u30fc\u30d7 #aqua #\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3 #\u30b3\u30f3\u30c6\u30ca #linux #cve20220492 - Tech Blog\uff5c\u30af\u30ea\u30a8\u30fc\u30b7\u30e7\u30f3\u30e9\u30a4\u30f3\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.creationline.com\\\/tech-blog\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/www.creationline.com\\\/tech-blog\\\/cloudnative\\\/aquasecurity\\\/49801#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/www.creationline.com\\\/tech-blog\\\/cloudnative\\\/aquasecurity\\\/49801#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.creationline.com\\\/tech-blog\\\/cms_x3GWkuX\\\/wp-content\\\/uploads\\\/2022\\\/03\\\/b60e1c8b93869131dccaf77f52ba9ea7.png\",\"datePublished\":\"2022-03-22T00:00:31+00:00\",\"author\":{\"@id\":\"https:\\\/\\\/www.creationline.com\\\/tech-blog\\\/#\\\/schema\\\/person\\\/2dfcdde19e3b7cb7da7c9ae23e1b7717\"},\"description\":\"AquaSecurity |\u672c\u30d6\u30ed\u30b0\u306f\u300cAqua Security\u300d\u793e\u306e\u6280\u8853\u30d6\u30ed\u30b0\u30672022\u5e743\u67089\u65e5\u306b\u516c\u958b\u3055\u308c\u305f\u300c New Linux Kernel Vulnerability:\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/www.creationline.com\\\/tech-blog\\\/cloudnative\\\/aquasecurity\\\/49801#breadcrumb\"},\"inLanguage\":\"ja\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/www.creationline.com\\\/tech-blog\\\/cloudnative\\\/aquasecurity\\\/49801\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"ja\",\"@id\":\"https:\\\/\\\/www.creationline.com\\\/tech-blog\\\/cloudnative\\\/aquasecurity\\\/49801#primaryimage\",\"url\":\"https:\\\/\\\/www.creationline.com\\\/tech-blog\\\/cms_x3GWkuX\\\/wp-content\\\/uploads\\\/2022\\\/03\\\/b60e1c8b93869131dccaf77f52ba9ea7.png\",\"contentUrl\":\"https:\\\/\\\/www.creationline.com\\\/tech-blog\\\/cms_x3GWkuX\\\/wp-content\\\/uploads\\\/2022\\\/03\\\/b60e1c8b93869131dccaf77f52ba9ea7.png\",\"width\":867,\"height\":418},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/www.creationline.com\\\/tech-blog\\\/cloudnative\\\/aquasecurity\\\/49801#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"HOME\",\"item\":\"https:\\\/\\\/www.creationline.com\\\/tech-blog\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"\u30af\u30e9\u30a6\u30c9\u30cd\u30a4\u30c6\u30a3\u30d6\",\"item\":\"https:\\\/\\\/www.creationline.com\\\/tech-blog\\\/cloudnative\"},{\"@type\":\"ListItem\",\"position\":3,\"name\":\"AquaSecurity\",\"item\":\"https:\\\/\\\/www.creationline.com\\\/tech-blog\\\/cloudnative\\\/aquasecurity\"},{\"@type\":\"ListItem\",\"position\":4,\"name\":\"Linux\u30ab\u30fc\u30cd\u30eb\u306e\u65b0\u305f\u306a\u8106\u5f31\u6027\uff1aCgroups \u3092\u60aa\u7528\u3057\u305f\u30b3\u30f3\u30c6\u30ca\u30a8\u30b9\u30b1\u30fc\u30d7 #aqua #\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3 #\u30b3\u30f3\u30c6\u30ca #linux #cve20220492\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/www.creationline.com\\\/tech-blog\\\/#website\",\"url\":\"https:\\\/\\\/www.creationline.com\\\/tech-blog\\\/\",\"name\":\"Tech Blog\uff5c\u30af\u30ea\u30a8\u30fc\u30b7\u30e7\u30f3\u30e9\u30a4\u30f3\",\"description\":\"\u30a2\u30b8\u30e3\u30a4\u30eb\uff06DevOps\u3001\u30af\u30e9\u30a6\u30c9\u30cd\u30a4\u30c6\u30a3\u30d6\u3001AI\uff06LLM\u306e\u5148\u7aef\u6280\u8853\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/www.creationline.com\\\/tech-blog\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"ja\"},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/www.creationline.com\\\/tech-blog\\\/#\\\/schema\\\/person\\\/2dfcdde19e3b7cb7da7c9ae23e1b7717\",\"name\":\"Kent Magruder\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"ja\",\"@id\":\"https:\\\/\\\/www.creationline.com\\\/tech-blog\\\/cms_x3GWkuX\\\/wp-content\\\/uploads\\\/2021\\\/12\\\/avatar.png\",\"url\":\"https:\\\/\\\/www.creationline.com\\\/tech-blog\\\/cms_x3GWkuX\\\/wp-content\\\/uploads\\\/2021\\\/12\\\/avatar.png\",\"contentUrl\":\"https:\\\/\\\/www.creationline.com\\\/tech-blog\\\/cms_x3GWkuX\\\/wp-content\\\/uploads\\\/2021\\\/12\\\/avatar.png\",\"caption\":\"Kent Magruder\"},\"url\":\"https:\\\/\\\/www.creationline.com\\\/tech-blog\\\/author\\\/k-magruder\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Linux\u30ab\u30fc\u30cd\u30eb\u306e\u65b0\u305f\u306a\u8106\u5f31\u6027\uff1aCgroups \u3092\u60aa\u7528\u3057\u305f\u30b3\u30f3\u30c6\u30ca\u30a8\u30b9\u30b1\u30fc\u30d7 #aqua #\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3 #\u30b3\u30f3\u30c6\u30ca #linux #cve20220492 - Tech Blog\uff5c\u30af\u30ea\u30a8\u30fc\u30b7\u30e7\u30f3\u30e9\u30a4\u30f3","description":"AquaSecurity |\u672c\u30d6\u30ed\u30b0\u306f\u300cAqua Security\u300d\u793e\u306e\u6280\u8853\u30d6\u30ed\u30b0\u30672022\u5e743\u67089\u65e5\u306b\u516c\u958b\u3055\u308c\u305f\u300c New Linux Kernel Vulnerability:","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.creationline.com\/tech-blog\/cloudnative\/aquasecurity\/49801","og_locale":"ja_JP","og_type":"article","og_title":"Linux\u30ab\u30fc\u30cd\u30eb\u306e\u65b0\u305f\u306a\u8106\u5f31\u6027\uff1aCgroups \u3092\u60aa\u7528\u3057\u305f\u30b3\u30f3\u30c6\u30ca\u30a8\u30b9\u30b1\u30fc\u30d7 #aqua #\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3 #\u30b3\u30f3\u30c6\u30ca #linux #cve20220492 - Tech Blog\uff5c\u30af\u30ea\u30a8\u30fc\u30b7\u30e7\u30f3\u30e9\u30a4\u30f3","og_description":"AquaSecurity |\u672c\u30d6\u30ed\u30b0\u306f\u300cAqua Security\u300d\u793e\u306e\u6280\u8853\u30d6\u30ed\u30b0\u30672022\u5e743\u67089\u65e5\u306b\u516c\u958b\u3055\u308c\u305f\u300c New Linux Kernel Vulnerability:","og_url":"https:\/\/www.creationline.com\/tech-blog\/cloudnative\/aquasecurity\/49801","og_site_name":"Tech Blog\uff5c\u30af\u30ea\u30a8\u30fc\u30b7\u30e7\u30f3\u30e9\u30a4\u30f3","article_publisher":"https:\/\/www.facebook.com\/creationline","article_published_time":"2022-03-22T00:00:31+00:00","og_image":[{"width":867,"height":418,"url":"https:\/\/www.creationline.com\/tech-blog\/cms_x3GWkuX\/wp-content\/uploads\/2022\/03\/b60e1c8b93869131dccaf77f52ba9ea7.png","type":"image\/png"}],"author":"Kent Magruder","twitter_card":"summary_large_image","twitter_creator":"@creationline","twitter_site":"@creationline","twitter_misc":{"\u57f7\u7b46\u8005":"Kent Magruder"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.creationline.com\/tech-blog\/cloudnative\/aquasecurity\/49801#article","isPartOf":{"@id":"https:\/\/www.creationline.com\/tech-blog\/cloudnative\/aquasecurity\/49801"},"author":{"name":"Kent Magruder","@id":"https:\/\/www.creationline.com\/tech-blog\/#\/schema\/person\/2dfcdde19e3b7cb7da7c9ae23e1b7717"},"headline":"Linux\u30ab\u30fc\u30cd\u30eb\u306e\u65b0\u305f\u306a\u8106\u5f31\u6027\uff1aCgroups \u3092\u60aa\u7528\u3057\u305f\u30b3\u30f3\u30c6\u30ca\u30a8\u30b9\u30b1\u30fc\u30d7 #aqua #\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3 #\u30b3\u30f3\u30c6\u30ca #linux #cve20220492","datePublished":"2022-03-22T00:00:31+00:00","mainEntityOfPage":{"@id":"https:\/\/www.creationline.com\/tech-blog\/cloudnative\/aquasecurity\/49801"},"wordCount":94,"image":{"@id":"https:\/\/www.creationline.com\/tech-blog\/cloudnative\/aquasecurity\/49801#primaryimage"},"thumbnailUrl":"https:\/\/www.creationline.com\/tech-blog\/cms_x3GWkuX\/wp-content\/uploads\/2022\/03\/b60e1c8b93869131dccaf77f52ba9ea7.png","keywords":["aqua","AquaSecurity","cve20220492","linux","\u30b3\u30f3\u30c6\u30ca","\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3"],"articleSection":["AquaSecurity"],"inLanguage":"ja"},{"@type":"WebPage","@id":"https:\/\/www.creationline.com\/tech-blog\/cloudnative\/aquasecurity\/49801","url":"https:\/\/www.creationline.com\/tech-blog\/cloudnative\/aquasecurity\/49801","name":"Linux\u30ab\u30fc\u30cd\u30eb\u306e\u65b0\u305f\u306a\u8106\u5f31\u6027\uff1aCgroups \u3092\u60aa\u7528\u3057\u305f\u30b3\u30f3\u30c6\u30ca\u30a8\u30b9\u30b1\u30fc\u30d7 #aqua #\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3 #\u30b3\u30f3\u30c6\u30ca #linux #cve20220492 - Tech Blog\uff5c\u30af\u30ea\u30a8\u30fc\u30b7\u30e7\u30f3\u30e9\u30a4\u30f3","isPartOf":{"@id":"https:\/\/www.creationline.com\/tech-blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.creationline.com\/tech-blog\/cloudnative\/aquasecurity\/49801#primaryimage"},"image":{"@id":"https:\/\/www.creationline.com\/tech-blog\/cloudnative\/aquasecurity\/49801#primaryimage"},"thumbnailUrl":"https:\/\/www.creationline.com\/tech-blog\/cms_x3GWkuX\/wp-content\/uploads\/2022\/03\/b60e1c8b93869131dccaf77f52ba9ea7.png","datePublished":"2022-03-22T00:00:31+00:00","author":{"@id":"https:\/\/www.creationline.com\/tech-blog\/#\/schema\/person\/2dfcdde19e3b7cb7da7c9ae23e1b7717"},"description":"AquaSecurity |\u672c\u30d6\u30ed\u30b0\u306f\u300cAqua Security\u300d\u793e\u306e\u6280\u8853\u30d6\u30ed\u30b0\u30672022\u5e743\u67089\u65e5\u306b\u516c\u958b\u3055\u308c\u305f\u300c New Linux Kernel Vulnerability:","breadcrumb":{"@id":"https:\/\/www.creationline.com\/tech-blog\/cloudnative\/aquasecurity\/49801#breadcrumb"},"inLanguage":"ja","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.creationline.com\/tech-blog\/cloudnative\/aquasecurity\/49801"]}]},{"@type":"ImageObject","inLanguage":"ja","@id":"https:\/\/www.creationline.com\/tech-blog\/cloudnative\/aquasecurity\/49801#primaryimage","url":"https:\/\/www.creationline.com\/tech-blog\/cms_x3GWkuX\/wp-content\/uploads\/2022\/03\/b60e1c8b93869131dccaf77f52ba9ea7.png","contentUrl":"https:\/\/www.creationline.com\/tech-blog\/cms_x3GWkuX\/wp-content\/uploads\/2022\/03\/b60e1c8b93869131dccaf77f52ba9ea7.png","width":867,"height":418},{"@type":"BreadcrumbList","@id":"https:\/\/www.creationline.com\/tech-blog\/cloudnative\/aquasecurity\/49801#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"HOME","item":"https:\/\/www.creationline.com\/tech-blog"},{"@type":"ListItem","position":2,"name":"\u30af\u30e9\u30a6\u30c9\u30cd\u30a4\u30c6\u30a3\u30d6","item":"https:\/\/www.creationline.com\/tech-blog\/cloudnative"},{"@type":"ListItem","position":3,"name":"AquaSecurity","item":"https:\/\/www.creationline.com\/tech-blog\/cloudnative\/aquasecurity"},{"@type":"ListItem","position":4,"name":"Linux\u30ab\u30fc\u30cd\u30eb\u306e\u65b0\u305f\u306a\u8106\u5f31\u6027\uff1aCgroups \u3092\u60aa\u7528\u3057\u305f\u30b3\u30f3\u30c6\u30ca\u30a8\u30b9\u30b1\u30fc\u30d7 #aqua #\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3 #\u30b3\u30f3\u30c6\u30ca #linux #cve20220492"}]},{"@type":"WebSite","@id":"https:\/\/www.creationline.com\/tech-blog\/#website","url":"https:\/\/www.creationline.com\/tech-blog\/","name":"Tech Blog\uff5c\u30af\u30ea\u30a8\u30fc\u30b7\u30e7\u30f3\u30e9\u30a4\u30f3","description":"\u30a2\u30b8\u30e3\u30a4\u30eb\uff06DevOps\u3001\u30af\u30e9\u30a6\u30c9\u30cd\u30a4\u30c6\u30a3\u30d6\u3001AI\uff06LLM\u306e\u5148\u7aef\u6280\u8853","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.creationline.com\/tech-blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"ja"},{"@type":"Person","@id":"https:\/\/www.creationline.com\/tech-blog\/#\/schema\/person\/2dfcdde19e3b7cb7da7c9ae23e1b7717","name":"Kent Magruder","image":{"@type":"ImageObject","inLanguage":"ja","@id":"https:\/\/www.creationline.com\/tech-blog\/cms_x3GWkuX\/wp-content\/uploads\/2021\/12\/avatar.png","url":"https:\/\/www.creationline.com\/tech-blog\/cms_x3GWkuX\/wp-content\/uploads\/2021\/12\/avatar.png","contentUrl":"https:\/\/www.creationline.com\/tech-blog\/cms_x3GWkuX\/wp-content\/uploads\/2021\/12\/avatar.png","caption":"Kent Magruder"},"url":"https:\/\/www.creationline.com\/tech-blog\/author\/k-magruder"}]}},"_links":{"self":[{"href":"https:\/\/www.creationline.com\/tech-blog\/wp-json\/wp\/v2\/posts\/49801","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.creationline.com\/tech-blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.creationline.com\/tech-blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.creationline.com\/tech-blog\/wp-json\/wp\/v2\/users\/56"}],"replies":[{"embeddable":true,"href":"https:\/\/www.creationline.com\/tech-blog\/wp-json\/wp\/v2\/comments?post=49801"}],"version-history":[{"count":8,"href":"https:\/\/www.creationline.com\/tech-blog\/wp-json\/wp\/v2\/posts\/49801\/revisions"}],"predecessor-version":[{"id":49933,"href":"https:\/\/www.creationline.com\/tech-blog\/wp-json\/wp\/v2\/posts\/49801\/revisions\/49933"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.creationline.com\/tech-blog\/wp-json\/wp\/v2\/media\/49802"}],"wp:attachment":[{"href":"https:\/\/www.creationline.com\/tech-blog\/wp-json\/wp\/v2\/media?parent=49801"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.creationline.com\/tech-blog\/wp-json\/wp\/v2\/categories?post=49801"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.creationline.com\/tech-blog\/wp-json\/wp\/v2\/tags?post=49801"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}